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(57) A server-server public-key cryptography apparatus is disclosed for use in the computer facilities of central 
organizations, e.g. on-line service providers. The apparatus has two network connections of the type common to 
computer networks, used respectively for exclusively receiving input data and exclusively transmitting output data for 
some elementary private key computation (digital signature, public key decryption, secret key establishment primitive 
based on a public key algorithm). The secrecy of this private key is supported by a number of the present invention 
features. Among others, are provided the cryptographic key management operations needed to initially configure, 
operate, maintain, and re-install in the case of disaster recovery. In operations, the access to the elementary private key 
computation has to be restricted to those computer applications that are the legitimate users of the private key. The 
one-way input connection, the one-way output connection, and some features of the cryptographic key management 
operations are provided to secure this restricted access to the function performed by the secure computing device. 
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ABSTRACT 

A server-server public-key ciyptography apparatus is disclosed for use in the computer 
facilities of central organizations, e.g. on-line service providers. The apparatus has two network 
connections of the type common to computer networks, used respectively for exclusively 
receiving input data and exclusively transmitting output data for some elementary private key 
computation (digital signature, public key decryption, secret key establishment primitive based 
on a public key algorithm). The secrecy of this private key is supported by a number of the 
present invention features. Among others, are provided the cryptographic key management 
operations needed to initially configure, operate, maintain, and re-install in the case of disaster 
recovery. In operations, the access to the elementary private key computation has to be 
restricted to those computer applications that are the legitimate users of the private key. The 
one-way input connection, the one-way output connection, and some features of the 
cryptographic key management operations are provided to secure this restricted access to the 
function performed by the secure computing device. 
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The embodiments of the invention in which an exclusive property or privilege is claimed are 
defined as follows: 

1 A secure cryptographic device implementing a public key Glyptography primitive with a 
one-way input connection and a one-way output connection* 
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